Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TOCTOU in SmmWhea
Vulnerability Description
APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use (TOCTOU) Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
检查时间与使用时间(TOCTOU)的竞争条件
Vulnerability Title
AMI APTIOV BIOS 安全漏洞
Vulnerability Description
AMI APTIOV BIOS是美国AMI公司的一个基于UEFI规范的现代BIOS固件解决方案。 AMI APTIOV BIOS存在安全漏洞,该漏洞源于TOCTOU竞争条件,可能导致任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A